Ir ao conteúdo
  • Cadastre-se
milarch

me ajudem por favor

Recommended Posts

Meu computador quando abro o google ( as vezes abre e as vezes abre uma tela pedindo para atualizar ( google chrome . exe)e o avast segura um cavalo de troia) mas agora já não abre até meu email, comecei a usar o "bing" para pesquisa e tbem começou a travar o bing. Foi difícil ate de mandar este tópico pois esta bloqueando, outro problema é que já tentaram acessar meu banco e tbem tem + 2 computadores que estão com mesmo problema. Peço AJUDA POR FAVORRRRRR. OBRIGADÃO pela ajuda.

Não consegui enviar aqui o dds e gmer pois trava e não consigo enviar..

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 9.0.8112.16421

Run by usuario at 10:50:36 on 2012-08-14

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3496.1809 [GMT -3:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe

C:\PROGRA~1\GbPlugin\GbpSv.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Windows\system32\IProsetMonitor.exe

C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe

C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\atieclxx.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Nokia\PC Internet Access\NPCIA.exe

C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe

C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe

C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\usuario\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKEY2FYG\HijackThis.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = about:blank

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GR469A~1.DLL

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540008} - c:\progra~1\gbplugin\gbiehuni.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll

uRun: [NokiaPCInternetAccess] "c:\program files\nokia\pc internet access\NPCIA.exe" /b

uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

uRun: [<NO NAME>]

uRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /AutoStart

uRun: [KSS] "c:\program files\kaspersky lab\kaspersky security scan 2.0\kss.exe" /autorun

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"

mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui

mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL

Trusted Zone: itau.com.br\bankline

Trusted Zone: itau.com.br\www

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.3.0/GarminAxControl_32.CAB

DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab

DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 10.1.1.1 192.168.0.1

TCP: Interfaces\{B59898F6-7560-4747-B6B0-95FD2D7D20E4} : DhcpNameServer = 10.1.1.1 192.168.0.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GRA32A~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: GbPluginUni - c:\progra~1\gbplugin\gbiehUni.dll

Notify: igfxcui - igfxdev.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GR469A~1.DLL

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399008} - c:\progra~1\gbplugin\gbiehuni.dll

.

============= SERVICES / DRIVERS ===============

.

R0 360HookOem;360HookOem;c:\windows\system32\drivers\360HookOem.sys [2012-8-13 54912]

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2011-8-26 43688]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2012-8-13 28552]

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-5-12 721000]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-5-12 353688]

R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928]

R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-8-7 913792]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-4-19 176128]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-5-12 21256]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-5-12 57656]

R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-2 44808]

R2 GbpSv;Gbp Service;c:\progra~1\gbplugin\GbpSv.exe [2012-1-2 196008]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [2011-5-12 87712]

R2 KSS;Serviço do Kaspersky Security Scan;c:\program files\kaspersky lab\kaspersky security scan 2.0\kss.exe [2012-4-25 202296]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-8-3 655944]

R2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2011-5-12 2655768]

R3 e1cexpress;Intel® PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\drivers\e1c6232.sys [2011-6-13 262824]

R3 IntcDAud;Áudio do vídeo Intel®;c:\windows\system32\drivers\IntcDAud.sys [2011-6-13 269824]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-8-3 22344]

R3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2011-6-13 41088]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2011-6-13 63872]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2011-6-13 141952]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 gupdate;Serviço do Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-3-5 136176]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-27 250056]

S3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atikmdag.sys [2011-4-19 7772160]

S3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2011-4-19 243712]

S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-3-30 100880]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 gupdatem;Serviço do Google Update (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-3-5 136176]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\wat\WatAdminSvc.exe [2011-5-12 1343400]

.

=============== Created Last 30 ================

.

2012-08-13 18:43:34 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys

2012-08-13 17:59:20 -------- d-----w- c:\users\usuario\appdata\local\{C8560685-24D9-45A5-8541-F2D257C26D69}

2012-08-13 17:58:56 -------- d-----w- c:\users\usuario\appdata\local\{886EA494-E359-45E6-A5B0-136834908CA9}

2012-08-13 17:52:07 -------- d-----w- c:\programdata\Kaspersky Lab

2012-08-13 17:52:07 -------- d-----w- c:\program files\Kaspersky Lab

2012-08-13 17:16:29 -------- d-----w- c:\program files\Advanced Fix 2012

2012-08-13 17:10:32 -------- d-----w- c:\program files\RegistryNuke 2012

2012-08-13 17:04:41 -------- d-----w- c:\users\usuario\PSafe

2012-08-13 17:04:15 23168 ----a-r- c:\windows\system32\drivers\360RegOem.sys

2012-08-13 17:04:15 146304 ----a-r- c:\windows\system32\drivers\360FileOem.sys

2012-08-13 17:04:03 54912 ----a-r- c:\windows\system32\drivers\360HookOem.sys

2012-08-10 15:52:39 -------- d-----w- c:\users\usuario\appdata\local\{8E3B5D6A-92B5-40F2-BCA5-DBE5044F2A83}

2012-08-10 15:52:14 -------- d-----w- c:\users\usuario\appdata\local\{26A4F38C-92A5-4C0A-9F57-FECA316F3D38}

2012-08-10 15:06:42 -------- d-----w- c:\users\usuario\appdata\roaming\QuickScan

2012-08-10 13:37:32 -------- d-----w- c:\users\usuario\appdata\local\{763D99B8-B26E-4AC9-B479-455AE531D20E}

2012-08-10 13:37:10 -------- d-----w- c:\users\usuario\appdata\local\{E8DA1007-4ACD-445F-B0A7-84EBDA946741}

2012-08-09 15:01:13 -------- d-----w- c:\users\usuario\appdata\local\{0C055885-6EB4-4588-BBBC-B4D4266ABB45}

2012-08-09 15:00:50 -------- d-----w- c:\users\usuario\appdata\local\{6AEA2D5F-EC57-4AE0-8E5E-DC3B225E564E}

2012-08-09 14:55:16 6891424 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{80d9be8c-a376-428c-957e-c7eec48ce5bd}\mpengine.dll

2012-08-09 13:47:44 -------- d-----w- c:\users\usuario\appdata\local\{658A8F71-8BB7-4314-BAF6-935601EF0916}

2012-08-09 13:47:34 -------- d-----w- c:\users\usuario\appdata\local\{A2BBE685-5FA9-4E92-9657-A38DC7C53337}

2012-08-08 14:49:13 -------- d-----w- c:\users\usuario\appdata\local\{A406A819-C9FF-4284-932B-D6DAD48BB0D2}

2012-08-08 14:48:54 -------- d-----w- c:\users\usuario\appdata\local\{2129C393-02A2-439D-9B31-87E3A94326CA}

2012-08-07 18:58:14 26496 ----a-w- c:\windows\system32\drivers\Diskdump.sys

2012-08-07 18:52:02 22400 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe

2012-08-07 17:00:20 -------- d-----w- c:\programdata\IObit

2012-08-07 17:00:10 -------- d-----w- c:\users\usuario\appdata\roaming\IObit

2012-08-07 17:00:06 -------- d-----w- c:\program files\IObit

2012-08-07 14:07:37 -------- d-----w- c:\users\usuario\appdata\local\{CCE79C6B-CA74-47AE-95C9-AB7317B80FEA}

2012-08-07 14:07:23 -------- d-----w- c:\users\usuario\appdata\local\{DA17AF70-7200-4661-903C-8BFE89A13F78}

2012-08-06 13:35:42 -------- d-----w- c:\users\usuario\appdata\local\{AAB17C46-A0D8-48AE-800F-6CEC0ECBA305}

2012-08-06 13:35:20 -------- d-----w- c:\users\usuario\appdata\local\{F014E3FB-1885-407B-B221-D552488BAEC1}

2012-08-03 14:25:12 -------- d-----w- c:\users\usuario\appdata\roaming\Malwarebytes

2012-08-03 14:25:04 -------- d-----w- c:\programdata\Malwarebytes

2012-08-03 14:25:03 22344 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-08-03 14:25:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2012-08-03 14:05:20 -------- d-----w- c:\users\usuario\appdata\local\{59FD1185-A15F-47F0-93C9-85DF1CBF8D08}

2012-08-03 14:04:58 -------- d-----w- c:\users\usuario\appdata\local\{939D5044-695C-43D9-83B2-2AB75AE3B36B}

2012-08-03 13:42:49 -------- d-----w- c:\programdata\Systweak

2012-08-03 13:42:49 -------- d-----w- c:\program files\Advanced System Protector

2012-08-03 13:42:48 17136 ----a-w- c:\windows\system32\sasnative32.exe

2012-08-03 13:42:37 -------- d-----w- c:\users\usuario\appdata\roaming\Systweak

2012-08-03 13:42:36 17320 ----a-w- c:\windows\system32\roboot.exe

2012-08-03 13:42:35 -------- d-----w- c:\program files\RegClean Pro

2012-08-02 14:24:37 -------- d-sh--w- C:\found.000

2012-08-02 14:02:53 -------- d-----w- c:\users\usuario\appdata\local\{BE58EBA3-17E3-4E5E-AE9B-FE0DD41C1133}

2012-08-02 14:02:43 -------- d-----w- c:\users\usuario\appdata\local\{62BBD8F8-504A-4B3F-A0E6-9F8B9369D22D}

2012-08-01 14:39:39 -------- d-----w- c:\users\usuario\appdata\local\{ED2D178F-BF24-4300-8B05-23398855CB93}

2012-08-01 14:39:19 -------- d-----w- c:\users\usuario\appdata\local\{4824CB99-D14F-41AD-826B-676C4DF35384}

2012-07-30 13:39:25 -------- d-----w- c:\users\usuario\appdata\local\{5EBE3274-7878-4016-86FE-836452EABD4D}

2012-07-30 13:39:03 -------- d-----w- c:\users\usuario\appdata\local\{C04F3975-5369-4B6F-9C45-FAB3B3DA69E5}

2012-07-27 12:58:27 -------- d-----w- c:\users\usuario\appdata\local\{7F1B7F29-AAA5-4D99-AEFF-78D2AA1C202F}

2012-07-27 12:58:06 -------- d-----w- c:\users\usuario\appdata\local\{0F3363D5-1B2B-4E3B-A1DA-8193DFC1B999}

2012-07-26 13:15:51 -------- d-----w- c:\users\usuario\appdata\local\{DB7EEE4C-3C60-46A4-BA13-24654341CC3A}

2012-07-26 13:15:29 -------- d-----w- c:\users\usuario\appdata\local\{D345FCF7-BBCB-484A-90B7-B370123275F3}

2012-07-25 13:25:30 -------- d-----w- c:\users\usuario\appdata\local\{1DA0F382-B661-440F-966F-FB14B2732C52}

2012-07-25 13:25:09 -------- d-----w- c:\users\usuario\appdata\local\{EB89CA4D-7C9A-4231-8A01-D01581408F24}

2012-07-24 15:03:15 -------- d-----w- c:\users\usuario\appdata\local\{02F3C91F-35FD-414C-993B-E8EE241AD7C5}

2012-07-24 15:02:55 -------- d-----w- c:\users\usuario\appdata\local\{E45E9613-5670-43C4-B9E9-68EDE8E47697}

2012-07-23 13:25:38 -------- d-----w- c:\users\usuario\appdata\local\{922A68F3-803A-4F25-9975-7EBF6A88A6F8}

2012-07-23 13:25:17 -------- d-----w- c:\users\usuario\appdata\local\{19564E39-65A9-4A73-8470-62F3127F36A1}

2012-07-20 12:36:47 -------- d-----w- c:\users\usuario\appdata\local\{40988478-541B-4B89-8B2F-CD40EDE67629}

2012-07-20 12:36:31 -------- d-----w- c:\users\usuario\appdata\local\{E81DEA2F-84C9-47E2-8030-26F3C626498F}

2012-07-19 12:42:17 -------- d-----w- c:\users\usuario\appdata\local\{AEC937DF-33C4-490E-8CD1-B4D27A8648AA}

2012-07-19 12:41:57 -------- d-----w- c:\users\usuario\appdata\local\{B3769DFC-BBDD-4B44-86E0-7879DCC9A843}

2012-07-18 12:49:25 -------- d-----w- c:\users\usuario\appdata\local\{96832F68-AA98-40BA-96EC-7E153C318A9D}

2012-07-18 12:49:04 -------- d-----w- c:\users\usuario\appdata\local\{4C89E087-2713-4CA5-A033-C87D75FEC3D4}

2012-07-17 13:44:06 -------- d-----w- c:\users\usuario\appdata\local\{53F5B67C-8AC2-4B26-80F7-3D45FFAE4ABA}

2012-07-17 13:43:45 -------- d-----w- c:\users\usuario\appdata\local\{4CA1B809-967E-45BF-862F-76A53043DC8E}

2012-07-16 13:14:13 -------- d-----w- c:\users\usuario\appdata\local\{B91B5B40-4D2A-4083-BE11-E2FFE613FF2A}

2012-07-16 13:13:52 -------- d-----w- c:\users\usuario\appdata\local\{15576524-0168-4D6D-93D9-A69443B16203}

.

==================== Find3M ====================

.

2012-08-02 18:46:10 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-08-02 18:46:10 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-07-03 16:21:53 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2012-07-03 16:21:53 57656 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2012-07-03 16:21:53 44784 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2012-07-03 16:21:32 41224 ----a-w- c:\windows\avastSS.scr

2012-05-31 15:25:14 237072 ----a-w- c:\windows\system32\MpSigStub.exe

.

============= FINISH: 10:51:03,37 ===============

GMER NÃO ACEITA EU ENVIAR

Compartilhar este post


Link para o post
Compartilhar em outros sites

Poste novo log do DDS, por gentileza.

Compartilhar este post


Link para o post
Compartilhar em outros sites
Poste novo log do DDS, por gentileza.

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 9.0.8112.16421

Run by usuario at 10:21:20 on 2012-08-20

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3496.2117 [GMT -3:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe

C:\PROGRA~1\GbPlugin\GbpSv.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Windows\system32\IProsetMonitor.exe

C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\taskeng.exe

C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Nokia\PC Internet Access\NPCIA.exe

C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe

C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\conhost.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = about:blank

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GR469A~1.DLL

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540008} - c:\progra~1\gbplugin\gbiehuni.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll

uRun: [NokiaPCInternetAccess] "c:\program files\nokia\pc internet access\NPCIA.exe" /b

uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

uRun: [<NO NAME>]

uRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /AutoStart

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"

mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui

mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.3.0/GarminAxControl_32.CAB

DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab

DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 10.1.1.1 192.168.0.1

TCP: Interfaces\{B59898F6-7560-4747-B6B0-95FD2D7D20E4} : DhcpNameServer = 10.1.1.1 192.168.0.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GRA32A~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: GbPluginUni - c:\progra~1\gbplugin\gbiehUni.dll

Notify: igfxcui - igfxdev.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GR469A~1.DLL

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399008} - c:\progra~1\gbplugin\gbiehuni.dll

.

============= SERVICES / DRIVERS ===============

.

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2011-8-26 43688]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2012-8-13 28552]

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-5-12 721000]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-5-12 353688]

R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928]

R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-8-7 913792]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-4-19 176128]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-5-12 21256]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-5-12 57656]

R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-2 44808]

R2 GbpSv;Gbp Service;c:\progra~1\gbplugin\GbpSv.exe [2012-1-2 196008]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [2011-5-12 87712]

R2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2011-5-12 2655768]

R3 e1cexpress;Intel® PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\drivers\e1c6232.sys [2011-6-13 262824]

R3 IntcDAud;Áudio do vídeo Intel®;c:\windows\system32\drivers\IntcDAud.sys [2011-6-13 269824]

R3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2011-6-13 41088]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2011-6-13 63872]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2011-6-13 141952]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 gupdate;Serviço do Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-3-5 136176]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-27 250056]

S3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atikmdag.sys [2011-4-19 7772160]

S3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2011-4-19 243712]

S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-3-30 100880]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 gupdatem;Serviço do Google Update (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-3-5 136176]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-8-3 22344]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\wat\WatAdminSvc.exe [2011-5-12 1343400]

S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-8-3 655944]

.

=============== Created Last 30 ================

.

2012-08-17 13:37:36 -------- d-----w- c:\users\usuario\appdata\local\{3D37752A-3E40-4A4A-BB3C-BB7401B37555}

2012-08-17 13:37:24 -------- d-----w- c:\users\usuario\appdata\local\{E7C4E1AD-336C-4369-8177-B3FFA9B58FB0}

2012-08-16 16:12:11 -------- d-----w- c:\users\usuario\appdata\local\{B7D0372D-0683-4E42-AC04-8A6735A4E0F9}

2012-08-16 16:11:47 -------- d-----w- c:\users\usuario\appdata\local\{710C9723-FD93-4B53-A3C7-4E1E14108647}

2012-08-15 19:33:47 -------- d-----w- C:\TDSSKiller_Quarantine

2012-08-15 18:31:57 -------- d-----w- c:\program files\Enigma Software Group

2012-08-15 18:31:24 -------- d-----w- c:\windows\CC1F6DA021D2425AB1B65B164A598450.TMP

2012-08-15 18:31:23 -------- d-----w- c:\program files\common files\Wise Installation Wizard

2012-08-15 14:47:00 -------- d-----w- c:\program files\Ss-Tools

2012-08-15 13:43:51 -------- d-----w- c:\users\usuario\appdata\local\{87387D4D-2ED6-40F9-8B58-D82A71294FCB}

2012-08-15 13:43:28 -------- d-----w- c:\users\usuario\appdata\local\{0F03D10B-8ADE-40F9-9246-FF48491550F5}

2012-08-14 15:32:16 -------- d-----w- c:\users\usuario\appdata\local\{A60D7CE8-6116-4C5D-81E7-9BC02BBF6A85}

2012-08-14 15:31:53 -------- d-----w- c:\users\usuario\appdata\local\{C59EE590-FAF4-4856-8FAC-98C0219D230D}

2012-08-14 15:23:04 -------- d-----w- c:\users\usuario\appdata\local\{5CFF74C6-378F-4DC0-BBBD-70BB40D97369}

2012-08-14 15:20:47 -------- d-----w- c:\users\usuario\appdata\local\{C968E801-B1C1-447D-997B-9898BE62171F}

2012-08-14 15:18:21 -------- d-----w- c:\users\usuario\appdata\local\{884BCE6E-CD61-4EBB-BB2F-5DEB72E7EC8A}

2012-08-14 15:16:15 -------- d-----w- c:\users\usuario\appdata\local\{8CE32385-F5F8-4652-90AC-A6EFE5A0578C}

2012-08-14 15:15:45 -------- d-----w- c:\users\usuario\appdata\local\{FCF6051A-ACD0-4AA2-86A4-B5F8DC4D8690}

2012-08-14 14:29:19 -------- d-----w- c:\users\usuario\appdata\local\{ABF89ADA-2E73-44E6-A9BC-959F45F10022}

2012-08-14 14:28:03 -------- d-----w- c:\users\usuario\appdata\local\{BE5ECD56-7DA2-4022-9FEF-7C130E516309}

2012-08-14 14:26:30 -------- d-----w- c:\users\usuario\appdata\local\{36DA6A9B-6E69-4F74-9325-90AC3A3F40C3}

2012-08-14 14:25:41 -------- d-----w- c:\users\usuario\appdata\local\{33D8F7E8-6F29-4BD2-AFFC-5D4477E3B9E8}

2012-08-13 18:43:34 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys

2012-08-13 17:59:20 -------- d-----w- c:\users\usuario\appdata\local\{C8560685-24D9-45A5-8541-F2D257C26D69}

2012-08-13 17:58:56 -------- d-----w- c:\users\usuario\appdata\local\{886EA494-E359-45E6-A5B0-136834908CA9}

2012-08-13 17:16:29 -------- d-----w- c:\program files\Advanced Fix 2012

2012-08-13 17:10:32 -------- d-----w- c:\program files\RegistryNuke 2012

2012-08-13 17:04:41 -------- d-----w- c:\users\usuario\PSafe

2012-08-13 17:04:15 23168 ----a-r- c:\windows\system32\drivers\360RegOem.sys

2012-08-13 17:04:15 146304 ----a-r- c:\windows\system32\drivers\360FileOem.sys

2012-08-10 15:52:39 -------- d-----w- c:\users\usuario\appdata\local\{8E3B5D6A-92B5-40F2-BCA5-DBE5044F2A83}

2012-08-10 15:52:14 -------- d-----w- c:\users\usuario\appdata\local\{26A4F38C-92A5-4C0A-9F57-FECA316F3D38}

2012-08-10 15:06:42 -------- d-----w- c:\users\usuario\appdata\roaming\QuickScan

2012-08-10 13:37:32 -------- d-----w- c:\users\usuario\appdata\local\{763D99B8-B26E-4AC9-B479-455AE531D20E}

2012-08-10 13:37:10 -------- d-----w- c:\users\usuario\appdata\local\{E8DA1007-4ACD-445F-B0A7-84EBDA946741}

2012-08-09 15:01:13 -------- d-----w- c:\users\usuario\appdata\local\{0C055885-6EB4-4588-BBBC-B4D4266ABB45}

2012-08-09 15:00:50 -------- d-----w- c:\users\usuario\appdata\local\{6AEA2D5F-EC57-4AE0-8E5E-DC3B225E564E}

2012-08-09 14:55:16 6891424 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{80d9be8c-a376-428c-957e-c7eec48ce5bd}\mpengine.dll

2012-08-09 13:47:44 -------- d-----w- c:\users\usuario\appdata\local\{658A8F71-8BB7-4314-BAF6-935601EF0916}

2012-08-09 13:47:34 -------- d-----w- c:\users\usuario\appdata\local\{A2BBE685-5FA9-4E92-9657-A38DC7C53337}

2012-08-08 14:49:13 -------- d-----w- c:\users\usuario\appdata\local\{A406A819-C9FF-4284-932B-D6DAD48BB0D2}

2012-08-08 14:48:54 -------- d-----w- c:\users\usuario\appdata\local\{2129C393-02A2-439D-9B31-87E3A94326CA}

2012-08-07 18:58:14 26496 ----a-w- c:\windows\system32\drivers\Diskdump.sys

2012-08-07 18:52:02 22400 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe

2012-08-07 17:00:20 -------- d-----w- c:\programdata\IObit

2012-08-07 17:00:10 -------- d-----w- c:\users\usuario\appdata\roaming\IObit

2012-08-07 17:00:06 -------- d-----w- c:\program files\IObit

2012-08-07 14:07:37 -------- d-----w- c:\users\usuario\appdata\local\{CCE79C6B-CA74-47AE-95C9-AB7317B80FEA}

2012-08-07 14:07:23 -------- d-----w- c:\users\usuario\appdata\local\{DA17AF70-7200-4661-903C-8BFE89A13F78}

2012-08-06 13:35:42 -------- d-----w- c:\users\usuario\appdata\local\{AAB17C46-A0D8-48AE-800F-6CEC0ECBA305}

2012-08-06 13:35:20 -------- d-----w- c:\users\usuario\appdata\local\{F014E3FB-1885-407B-B221-D552488BAEC1}

2012-08-03 14:25:12 -------- d-----w- c:\users\usuario\appdata\roaming\Malwarebytes

2012-08-03 14:25:04 -------- d-----w- c:\programdata\Malwarebytes

2012-08-03 14:25:03 22344 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-08-03 14:25:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2012-08-03 14:05:20 -------- d-----w- c:\users\usuario\appdata\local\{59FD1185-A15F-47F0-93C9-85DF1CBF8D08}

2012-08-03 14:04:58 -------- d-----w- c:\users\usuario\appdata\local\{939D5044-695C-43D9-83B2-2AB75AE3B36B}

2012-08-03 13:42:49 -------- d-----w- c:\programdata\Systweak

2012-08-03 13:42:49 -------- d-----w- c:\program files\Advanced System Protector

2012-08-03 13:42:48 17136 ----a-w- c:\windows\system32\sasnative32.exe

2012-08-03 13:42:37 -------- d-----w- c:\users\usuario\appdata\roaming\Systweak

2012-08-03 13:42:36 17320 ----a-w- c:\windows\system32\roboot.exe

2012-08-03 13:42:35 -------- d-----w- c:\program files\RegClean Pro

2012-08-02 14:24:37 -------- d-sh--w- C:\found.000

2012-08-02 14:02:53 -------- d-----w- c:\users\usuario\appdata\local\{BE58EBA3-17E3-4E5E-AE9B-FE0DD41C1133}

2012-08-02 14:02:43 -------- d-----w- c:\users\usuario\appdata\local\{62BBD8F8-504A-4B3F-A0E6-9F8B9369D22D}

2012-08-01 14:39:39 -------- d-----w- c:\users\usuario\appdata\local\{ED2D178F-BF24-4300-8B05-23398855CB93}

2012-08-01 14:39:19 -------- d-----w- c:\users\usuario\appdata\local\{4824CB99-D14F-41AD-826B-676C4DF35384}

2012-07-30 13:39:25 -------- d-----w- c:\users\usuario\appdata\local\{5EBE3274-7878-4016-86FE-836452EABD4D}

2012-07-30 13:39:03 -------- d-----w- c:\users\usuario\appdata\local\{C04F3975-5369-4B6F-9C45-FAB3B3DA69E5}

2012-07-27 12:58:27 -------- d-----w- c:\users\usuario\appdata\local\{7F1B7F29-AAA5-4D99-AEFF-78D2AA1C202F}

2012-07-27 12:58:06 -------- d-----w- c:\users\usuario\appdata\local\{0F3363D5-1B2B-4E3B-A1DA-8193DFC1B999}

2012-07-26 13:15:51 -------- d-----w- c:\users\usuario\appdata\local\{DB7EEE4C-3C60-46A4-BA13-24654341CC3A}

2012-07-26 13:15:29 -------- d-----w- c:\users\usuario\appdata\local\{D345FCF7-BBCB-484A-90B7-B370123275F3}

2012-07-25 13:25:30 -------- d-----w- c:\users\usuario\appdata\local\{1DA0F382-B661-440F-966F-FB14B2732C52}

2012-07-25 13:25:09 -------- d-----w- c:\users\usuario\appdata\local\{EB89CA4D-7C9A-4231-8A01-D01581408F24}

2012-07-24 15:03:15 -------- d-----w- c:\users\usuario\appdata\local\{02F3C91F-35FD-414C-993B-E8EE241AD7C5}

2012-07-24 15:02:55 -------- d-----w- c:\users\usuario\appdata\local\{E45E9613-5670-43C4-B9E9-68EDE8E47697}

2012-07-23 13:25:38 -------- d-----w- c:\users\usuario\appdata\local\{922A68F3-803A-4F25-9975-7EBF6A88A6F8}

2012-07-23 13:25:17 -------- d-----w- c:\users\usuario\appdata\local\{19564E39-65A9-4A73-8470-62F3127F36A1}

.

==================== Find3M ====================

.

2012-08-15 17:46:18 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-08-15 17:46:18 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-07-03 16:21:53 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2012-07-03 16:21:53 57656 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2012-07-03 16:21:53 44784 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2012-07-03 16:21:32 41224 ----a-w- c:\windows\avastSS.scr

2012-05-31 15:25:14 237072 ----a-w- c:\windows\system32\MpSigStub.exe

.

============= FINISH: 10:22:02,83 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 12/05/2011 11:22:56

System Uptime: 20/08/2012 10:15:28 (0 hours ago)

.

Motherboard: Intel Corporation | | DH67GD

Processor: Intel® Core i7-2600 CPU @ 3.40GHz | LGA1155 | 3401/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 931 GiB total, 771,691 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP166: 13/08/2012 11:24:59 - Advanced System Protector

RP168: 15/08/2012 10:39:35 - Advanced System Protector

RP169: 15/08/2012 15:31:31 - Installed SpyHunter

RP170: 15/08/2012 16:01:53 - Removed SpyHunter

RP172: 16/08/2012 13:54:48 - Advanced System Protector

RP173: 16/08/2012 14:36:46 - Removido Renesas Electronics USB 3.0 Host Controller Driver

.

==== Installed Programs ======================

.

"Nero SoundTrax Help

Adobe Flash Player 11 ActiveX

Adobe Photoshop CS

Adobe Reader X (10.1.2) - Português

Advanced System Protector

Advanced SystemCare 5

Advertising Center

Aleo 3D Flash Slideshow Creator 1.8

Apple Application Support

Apple Software Update

Arquivo do WinRAR

aTube Catcher

avast! Free Antivirus

CCleaner

Controle ActiveX do Windows Live Mesh para Conexões Remotas

Corel Graphics - Windows Shell Extension

D3DX10

DolbyFiles

DVD Architect Studio 5.0

FoxTab PDF Converter

Google Update Helper

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)

ImagXpress

Intel® Management Engine Components

Intel® Network Connections 15.6.25.0

Intel® Processor Graphics

Java Auto Updater

Java 6 Update 26

Junk Mail filter update

Malwarebytes Anti-Malware versão 1.62.0.1300

Menu Templates - Starter Kit

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Client Profile PTB Language Pack

Microsoft Application Error Reporting

Microsoft Office Access MUI (Portuguese (Brazil)) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office Groove MUI (Portuguese (Brazil)) 2007

Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

Microsoft Office Outlook Connector

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

Microsoft Visual Studio Tools for Applications 2.0 - ENU

Microsoft Visual Studio Tools for Applications 2.0 Runtime

Microsoft_VC100_CRT_SP1_x86

Movie Templates - Starter Kit

MSVC80_x86_v2

MSVC90_x86

MSVCRT

MSVCRT Redists

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

Nero 9

Nero BurningROM

Nero BurnRights

Nero ControlCenter

Nero CoverDesigner

Nero CoverDesigner Help

Nero Disc Copy Gadget

Nero Disc Copy Gadget Help

Nero DiscSpeed

Nero DriveSpeed

Nero Express

Nero InfoTool

Nero Installer

Nero PhotoSnap

Nero PhotoSnap Help

Nero Recode

Nero Recode Help

Nero Rescue Agent

Nero RescueAgent Help

Nero ShowTime

Nero StartSmart

Nero StartSmart Help

Nero Vision

Nero WaveEditor

Nero WaveEditor Help

NeroBurningROM

NeroExpress

neroxml

Nokia Connectivity Cable Driver

Nokia PC Internet Access

Nokia Suite

Pacote de Driver do Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)

Pacote de Fontes de Codigo de Barras LinhaBase EAN 8 EAN 13 - Demonstracao

Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)

Panda ActiveScan 2.0

PC Connectivity Solution

QuickTime

Realtek High Definition Audio Driver

Renesas Electronics USB 3.0 Host Controller Driver

Samsung_MonSetup

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

SoundTrax

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Vegas Movie Studio HD Platinum 10.0

Windows Live Communications Platform

Windows Live Essentials

Windows Live Galeria de Fotos

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

WinPcap 4.1.1

.

==== End Of File ===========================

Obrigado

Compartilhar este post


Link para o post
Compartilhar em outros sites

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 12/05/2011 11:22:56

System Uptime: 22/08/2012 10:42:31 (0 hours ago)

.

Motherboard: Intel Corporation | | DH67GD

Processor: Intel® Core i7-2600 CPU @ 3.40GHz | LGA1155 | 3401/100mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 931 GiB total, 770,812 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP166: 13/08/2012 11:24:59 - Advanced System Protector

RP168: 15/08/2012 10:39:35 - Advanced System Protector

RP169: 15/08/2012 15:31:31 - Installed SpyHunter

RP170: 15/08/2012 16:01:53 - Removed SpyHunter

RP172: 16/08/2012 13:54:48 - Advanced System Protector

RP173: 16/08/2012 14:36:46 - Removido Renesas Electronics USB 3.0 Host Controller Driver

RP175: 21/08/2012 11:02:41 - Advanced System Protector

.

==== Installed Programs ======================

.

"Nero SoundTrax Help

Adobe Flash Player 11 ActiveX

Adobe Photoshop CS

Adobe Reader X (10.1.2) - Português

Advanced System Protector

Advanced SystemCare 5

Advertising Center

Aleo 3D Flash Slideshow Creator 1.8

Apple Application Support

Apple Software Update

Arquivo do WinRAR

aTube Catcher

avast! Free Antivirus

CCleaner

Controle ActiveX do Windows Live Mesh para Conexões Remotas

Corel Graphics - Windows Shell Extension

D3DX10

DolbyFiles

DVD Architect Studio 5.0

FoxTab PDF Converter

Google Update Helper

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)

ImagXpress

Intel® Management Engine Components

Intel® Network Connections 15.6.25.0

Intel® Processor Graphics

Java Auto Updater

Java 6 Update 26

Junk Mail filter update

Malwarebytes Anti-Malware versão 1.62.0.1300

Menu Templates - Starter Kit

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Client Profile PTB Language Pack

Microsoft Application Error Reporting

Microsoft Office Access MUI (Portuguese (Brazil)) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office Groove MUI (Portuguese (Brazil)) 2007

Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

Microsoft Office Outlook Connector

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

Microsoft Visual Studio Tools for Applications 2.0 - ENU

Microsoft Visual Studio Tools for Applications 2.0 Runtime

Microsoft_VC100_CRT_SP1_x86

Movie Templates - Starter Kit

MSVC80_x86_v2

MSVC90_x86

MSVCRT

MSVCRT Redists

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP2 Parser and SDK

Nero 9

Nero BurningROM

Nero BurnRights

Nero ControlCenter

Nero CoverDesigner

Nero CoverDesigner Help

Nero Disc Copy Gadget

Nero Disc Copy Gadget Help

Nero DiscSpeed

Nero DriveSpeed

Nero Express

Nero InfoTool

Nero Installer

Nero PhotoSnap

Nero PhotoSnap Help

Nero Recode

Nero Recode Help

Nero Rescue Agent

Nero RescueAgent Help

Nero ShowTime

Nero StartSmart

Nero StartSmart Help

Nero Vision

Nero WaveEditor

Nero WaveEditor Help

NeroBurningROM

NeroExpress

neroxml

Nokia Connectivity Cable Driver

Nokia PC Internet Access

Nokia Suite

Pacote de Driver do Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)

Pacote de Fontes de Codigo de Barras LinhaBase EAN 8 EAN 13 - Demonstracao

Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)

Panda ActiveScan 2.0

PC Connectivity Solution

QuickTime

Realtek High Definition Audio Driver

Renesas Electronics USB 3.0 Host Controller Driver

Samsung_MonSetup

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

SoundTrax

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Vegas Movie Studio HD Platinum 10.0

Windows Live Communications Platform

Windows Live Essentials

Windows Live Galeria de Fotos

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Mail

Windows Live Messenger

Windows Live MIME IFilter

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

WinPcap 4.1.1

.

==== End Of File ===========================

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 9.0.8112.16421

Run by usuario at 10:48:30 on 2012-08-22

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3496.2129 [GMT -3:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe

C:\PROGRA~1\GbPlugin\GbpSv.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Windows\system32\IProsetMonitor.exe

C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Nokia\PC Internet Access\NPCIA.exe

C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe

C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = about:blank

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GR469A~1.DLL

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540008} - c:\progra~1\gbplugin\gbiehuni.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll

uRun: [NokiaPCInternetAccess] "c:\program files\nokia\pc internet access\NPCIA.exe" /b

uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

uRun: [<NO NAME>]

uRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /AutoStart

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"

mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui

mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL

Trusted Zone: itau.com.br\bankline

Trusted Zone: itau.com.br\www

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.3.0/GarminAxControl_32.CAB

DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab

DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 10.1.1.1 192.168.0.1

TCP: Interfaces\{B59898F6-7560-4747-B6B0-95FD2D7D20E4} : DhcpNameServer = 10.1.1.1 192.168.0.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GRA32A~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: GbPluginUni - c:\progra~1\gbplugin\gbiehUni.dll

Notify: igfxcui - igfxdev.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GR469A~1.DLL

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399008} - c:\progra~1\gbplugin\gbiehuni.dll

.

============= SERVICES / DRIVERS ===============

.

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2011-8-26 43688]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2012-8-13 28552]

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-5-12 721000]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-5-12 353688]

R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928]

R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-8-7 913792]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-4-19 176128]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-5-12 21256]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-5-12 57656]

R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-2 44808]

R2 GbpSv;Gbp Service;c:\progra~1\gbplugin\GbpSv.exe [2012-1-2 196008]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [2011-5-12 87712]

R2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2011-5-12 2655768]

R3 e1cexpress;Intel® PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\drivers\e1c6232.sys [2011-6-13 262824]

R3 IntcDAud;Áudio do vídeo Intel®;c:\windows\system32\drivers\IntcDAud.sys [2011-6-13 269824]

R3 MEI;Intel® Management Engine Interface;c:\windows\system32\drivers\HECI.sys [2011-6-13 41088]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2011-6-13 63872]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2011-6-13 141952]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 gupdate;Serviço do Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-3-5 136176]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-27 250056]

S3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atikmdag.sys [2011-4-19 7772160]

S3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2011-4-19 243712]

S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-3-30 100880]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 gupdatem;Serviço do Google Update (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-3-5 136176]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-8-3 22344]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\wat\WatAdminSvc.exe [2011-5-12 1343400]

S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-8-3 655944]

.

=============== Created Last 30 ================

.

2012-08-21 13:43:02 -------- d-----w- c:\users\usuario\appdata\local\{B31C03B8-8852-4C77-A575-C067EB83BF99}

2012-08-20 13:41:39 -------- d-----w- c:\users\usuario\appdata\local\{547ED50A-DDE6-4963-8A7B-4CDD6A752646}

2012-08-17 13:37:36 -------- d-----w- c:\users\usuario\appdata\local\{3D37752A-3E40-4A4A-BB3C-BB7401B37555}

2012-08-17 13:37:24 -------- d-----w- c:\users\usuario\appdata\local\{E7C4E1AD-336C-4369-8177-B3FFA9B58FB0}

2012-08-16 16:12:11 -------- d-----w- c:\users\usuario\appdata\local\{B7D0372D-0683-4E42-AC04-8A6735A4E0F9}

2012-08-16 16:11:47 -------- d-----w- c:\users\usuario\appdata\local\{710C9723-FD93-4B53-A3C7-4E1E14108647}

2012-08-15 19:33:47 -------- d-----w- C:\TDSSKiller_Quarantine

2012-08-15 18:31:57 -------- d-----w- c:\program files\Enigma Software Group

2012-08-15 18:31:24 -------- d-----w- c:\windows\CC1F6DA021D2425AB1B65B164A598450.TMP

2012-08-15 18:31:23 -------- d-----w- c:\program files\common files\Wise Installation Wizard

2012-08-15 14:47:00 -------- d-----w- c:\program files\Ss-Tools

2012-08-15 13:43:51 -------- d-----w- c:\users\usuario\appdata\local\{87387D4D-2ED6-40F9-8B58-D82A71294FCB}

2012-08-15 13:43:28 -------- d-----w- c:\users\usuario\appdata\local\{0F03D10B-8ADE-40F9-9246-FF48491550F5}

2012-08-14 15:32:16 -------- d-----w- c:\users\usuario\appdata\local\{A60D7CE8-6116-4C5D-81E7-9BC02BBF6A85}

2012-08-14 15:31:53 -------- d-----w- c:\users\usuario\appdata\local\{C59EE590-FAF4-4856-8FAC-98C0219D230D}

2012-08-14 15:23:04 -------- d-----w- c:\users\usuario\appdata\local\{5CFF74C6-378F-4DC0-BBBD-70BB40D97369}

2012-08-14 15:20:47 -------- d-----w- c:\users\usuario\appdata\local\{C968E801-B1C1-447D-997B-9898BE62171F}

2012-08-14 15:18:21 -------- d-----w- c:\users\usuario\appdata\local\{884BCE6E-CD61-4EBB-BB2F-5DEB72E7EC8A}

2012-08-14 15:16:15 -------- d-----w- c:\users\usuario\appdata\local\{8CE32385-F5F8-4652-90AC-A6EFE5A0578C}

2012-08-14 15:15:45 -------- d-----w- c:\users\usuario\appdata\local\{FCF6051A-ACD0-4AA2-86A4-B5F8DC4D8690}

2012-08-14 14:29:19 -------- d-----w- c:\users\usuario\appdata\local\{ABF89ADA-2E73-44E6-A9BC-959F45F10022}

2012-08-14 14:28:03 -------- d-----w- c:\users\usuario\appdata\local\{BE5ECD56-7DA2-4022-9FEF-7C130E516309}

2012-08-14 14:26:30 -------- d-----w- c:\users\usuario\appdata\local\{36DA6A9B-6E69-4F74-9325-90AC3A3F40C3}

2012-08-14 14:25:41 -------- d-----w- c:\users\usuario\appdata\local\{33D8F7E8-6F29-4BD2-AFFC-5D4477E3B9E8}

2012-08-13 18:43:34 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys

2012-08-13 17:59:20 -------- d-----w- c:\users\usuario\appdata\local\{C8560685-24D9-45A5-8541-F2D257C26D69}

2012-08-13 17:58:56 -------- d-----w- c:\users\usuario\appdata\local\{886EA494-E359-45E6-A5B0-136834908CA9}

2012-08-13 17:16:29 -------- d-----w- c:\program files\Advanced Fix 2012

2012-08-13 17:10:32 -------- d-----w- c:\program files\RegistryNuke 2012

2012-08-13 17:04:41 -------- d-----w- c:\users\usuario\PSafe

2012-08-13 17:04:15 23168 ----a-r- c:\windows\system32\drivers\360RegOem.sys

2012-08-13 17:04:15 146304 ----a-r- c:\windows\system32\drivers\360FileOem.sys

2012-08-10 15:52:39 -------- d-----w- c:\users\usuario\appdata\local\{8E3B5D6A-92B5-40F2-BCA5-DBE5044F2A83}

2012-08-10 15:52:14 -------- d-----w- c:\users\usuario\appdata\local\{26A4F38C-92A5-4C0A-9F57-FECA316F3D38}

2012-08-10 15:06:42 -------- d-----w- c:\users\usuario\appdata\roaming\QuickScan

2012-08-10 13:37:32 -------- d-----w- c:\users\usuario\appdata\local\{763D99B8-B26E-4AC9-B479-455AE531D20E}

2012-08-10 13:37:10 -------- d-----w- c:\users\usuario\appdata\local\{E8DA1007-4ACD-445F-B0A7-84EBDA946741}

2012-08-09 15:01:13 -------- d-----w- c:\users\usuario\appdata\local\{0C055885-6EB4-4588-BBBC-B4D4266ABB45}

2012-08-09 15:00:50 -------- d-----w- c:\users\usuario\appdata\local\{6AEA2D5F-EC57-4AE0-8E5E-DC3B225E564E}

2012-08-09 14:55:16 6891424 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{80d9be8c-a376-428c-957e-c7eec48ce5bd}\mpengine.dll

2012-08-09 13:47:44 -------- d-----w- c:\users\usuario\appdata\local\{658A8F71-8BB7-4314-BAF6-935601EF0916}

2012-08-09 13:47:34 -------- d-----w- c:\users\usuario\appdata\local\{A2BBE685-5FA9-4E92-9657-A38DC7C53337}

2012-08-08 14:49:13 -------- d-----w- c:\users\usuario\appdata\local\{A406A819-C9FF-4284-932B-D6DAD48BB0D2}

2012-08-08 14:48:54 -------- d-----w- c:\users\usuario\appdata\local\{2129C393-02A2-439D-9B31-87E3A94326CA}

2012-08-07 18:58:14 26496 ----a-w- c:\windows\system32\drivers\Diskdump.sys

2012-08-07 18:52:02 22400 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe

2012-08-07 17:00:20 -------- d-----w- c:\programdata\IObit

2012-08-07 17:00:10 -------- d-----w- c:\users\usuario\appdata\roaming\IObit

2012-08-07 17:00:06 -------- d-----w- c:\program files\IObit

2012-08-07 14:07:37 -------- d-----w- c:\users\usuario\appdata\local\{CCE79C6B-CA74-47AE-95C9-AB7317B80FEA}

2012-08-07 14:07:23 -------- d-----w- c:\users\usuario\appdata\local\{DA17AF70-7200-4661-903C-8BFE89A13F78}

2012-08-06 13:35:42 -------- d-----w- c:\users\usuario\appdata\local\{AAB17C46-A0D8-48AE-800F-6CEC0ECBA305}

2012-08-06 13:35:20 -------- d-----w- c:\users\usuario\appdata\local\{F014E3FB-1885-407B-B221-D552488BAEC1}

2012-08-03 14:25:12 -------- d-----w- c:\users\usuario\appdata\roaming\Malwarebytes

2012-08-03 14:25:04 -------- d-----w- c:\programdata\Malwarebytes

2012-08-03 14:25:03 22344 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-08-03 14:25:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2012-08-03 14:05:20 -------- d-----w- c:\users\usuario\appdata\local\{59FD1185-A15F-47F0-93C9-85DF1CBF8D08}

2012-08-03 14:04:58 -------- d-----w- c:\users\usuario\appdata\local\{939D5044-695C-43D9-83B2-2AB75AE3B36B}

2012-08-03 13:42:49 -------- d-----w- c:\programdata\Systweak

2012-08-03 13:42:49 -------- d-----w- c:\program files\Advanced System Protector

2012-08-03 13:42:48 17136 ----a-w- c:\windows\system32\sasnative32.exe

2012-08-03 13:42:37 -------- d-----w- c:\users\usuario\appdata\roaming\Systweak

2012-08-03 13:42:36 17320 ----a-w- c:\windows\system32\roboot.exe

2012-08-03 13:42:35 -------- d-----w- c:\program files\RegClean Pro

2012-08-02 14:24:37 -------- d-sh--w- C:\found.000

2012-08-02 14:02:53 -------- d-----w- c:\users\usuario\appdata\local\{BE58EBA3-17E3-4E5E-AE9B-FE0DD41C1133}

2012-08-02 14:02:43 -------- d-----w- c:\users\usuario\appdata\local\{62BBD8F8-504A-4B3F-A0E6-9F8B9369D22D}

2012-08-01 14:39:39 -------- d-----w- c:\users\usuario\appdata\local\{ED2D178F-BF24-4300-8B05-23398855CB93}

2012-08-01 14:39:19 -------- d-----w- c:\users\usuario\appdata\local\{4824CB99-D14F-41AD-826B-676C4DF35384}

2012-07-30 13:39:25 -------- d-----w- c:\users\usuario\appdata\local\{5EBE3274-7878-4016-86FE-836452EABD4D}

2012-07-30 13:39:03 -------- d-----w- c:\users\usuario\appdata\local\{C04F3975-5369-4B6F-9C45-FAB3B3DA69E5}

2012-07-27 12:58:27 -------- d-----w- c:\users\usuario\appdata\local\{7F1B7F29-AAA5-4D99-AEFF-78D2AA1C202F}

2012-07-27 12:58:06 -------- d-----w- c:\users\usuario\appdata\local\{0F3363D5-1B2B-4E3B-A1DA-8193DFC1B999}

2012-07-26 13:15:51 -------- d-----w- c:\users\usuario\appdata\local\{DB7EEE4C-3C60-46A4-BA13-24654341CC3A}

2012-07-26 13:15:29 -------- d-----w- c:\users\usuario\appdata\local\{D345FCF7-BBCB-484A-90B7-B370123275F3}

2012-07-25 13:25:30 -------- d-----w- c:\users\usuario\appdata\local\{1DA0F382-B661-440F-966F-FB14B2732C52}

2012-07-25 13:25:09 -------- d-----w- c:\users\usuario\appdata\local\{EB89CA4D-7C9A-4231-8A01-D01581408F24}

2012-07-24 15:03:15 -------- d-----w- c:\users\usuario\appdata\local\{02F3C91F-35FD-414C-993B-E8EE241AD7C5}

2012-07-24 15:02:55 -------- d-----w- c:\users\usuario\appdata\local\{E45E9613-5670-43C4-B9E9-68EDE8E47697}

.

==================== Find3M ====================

.

2012-08-15 17:46:18 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-08-15 17:46:18 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-07-03 16:21:53 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2012-07-03 16:21:53 57656 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2012-07-03 16:21:53 44784 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2012-07-03 16:21:32 41224 ----a-w- c:\windows\avastSS.scr

2012-05-31 15:25:14 237072 ----a-w- c:\windows\system32\MpSigStub.exe

.

============= FINISH: 10:49:13,13 ===============

PEço a gentileza de analisar, por favor, a cada dia meu computador está pior. Os sites mais visitados não abrem, o email não abre, sites de pesquisa não abrem, face não abre etc. Falei com a operadora (GVT internet) para reconfigurar o sistema, e eles pediram para digitar o numero 10.1.1.1 mas não foi possível pois tbem dá erro. Obrigado

Compartilhar este post


Link para o post
Compartilhar em outros sites

Qual a marca e modelo do seu modem?

Tem acesso as configurações dele? Se sim, veja qual DNS está configurado e poste aqui.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Modem modelo Dlink dsl 500B e wirelessDi524 . Não tem acesso as configurações. Ao colocar na barra 10.1.1.1 ele aparece a mensagem Internet não pode exibir a pagina da web. Todas as luzes dele estão acesas. Ontem re-instalei o modem e começou a funcionar perfeito o dia inteiro com acesso normal. Hoje já esta com os mesmos problemas. Ontem ao colocar na barra 10.1.1.1 ( após reinstalaçao) abria a configuração do modem. Agora não mais.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Vai ver 10.1.1.1 não é o ip do seu modem. Como funciona sua conexão com a internet?

Compartilhar este post


Link para o post
Compartilhar em outros sites
Vai ver 10.1.1.1 não é o ip do seu modem. Como funciona sua conexão com a internet?

Olá , Sempre acessei pelo 10.1.1.1 , inclusive quando reconfigurei usei este numero 10.1.1.1 e tbem via GVT

Compartilhar este post


Link para o post
Compartilhar em outros sites

Pode resetar o seu modem e reconfigurá-lo?

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×